X

Vous n'êtes pas connecté

Rubriques :

Maroc Maroc - SECURITYAFFAIRS.CO - A La Une - 25/Mar 08:50

Malicious LiteLLM versions linked to TeamPCP supply chain attack

TeamPCP backdoored LiteLLM v1.82.7–1.82.8, likely via Trivy CI/CD, adding tools to steal credentials, move in Kubernetes, and keep persistent access. Threat actor TeamPCP compromised LiteLLM versions 1.82.7 and 1.82.8, likely through a Trivy CI/CD breach. LiteLLM, with over 95 million monthly downloads, helps developers route LLM requests via a single API. The malicious releases, now […]

Articles similaires

Sorry! Image not available at this time

44 Aqua Security repositories defaced after Trivy supply chain breach

securityaffairs.co - 23/Mar 14:24

Malicious Trivy images on Docker Hub spread infostealer malware, exposing developers after a supply chain attack. Researchers found malicious Trivy...

Sorry! Image not available at this time

44 Aqua Security repositories defaced after Trivy supply chain breach

securityaffairs.co - 23/Mar 14:24

Malicious Trivy images on Docker Hub spread infostealer malware, exposing developers after a supply chain attack. Researchers found malicious Trivy...

Sorry! Image not available at this time

Hackers Compromise Trivy Scanner to Inject malicious Scripts and Steal Login Credentials

itsecuritynews.info - 21/Mar 17:32

A sophisticated supply chain attack targeting the official Trivy GitHub Action (aquasecurity/trivy-action) has compromised continuous integration and...

Sorry! Image not available at this time

Hackers Compromise Trivy Scanner to Inject malicious Scripts and Steal Login Credentials

itsecuritynews.info - 21/Mar 17:32

A sophisticated supply chain attack targeting the official Trivy GitHub Action (aquasecurity/trivy-action) has compromised continuous integration and...

Sorry! Image not available at this time

44 Aqua Security repositories defaced after Trivy supply chain breach

itsecuritynews.info - 23/Mar 15:10

Malicious Trivy images on Docker Hub spread infostealer malware, exposing developers after a supply chain attack. Researchers found malicious Trivy...

Sorry! Image not available at this time

44 Aqua Security repositories defaced after Trivy supply chain breach

itsecuritynews.info - 23/Mar 15:10

Malicious Trivy images on Docker Hub spread infostealer malware, exposing developers after a supply chain attack. Researchers found malicious Trivy...

Sorry! Image not available at this time

Popular LiteLLM PyPI package backdoored to steal credentials, auth tokens

bleepingcomputer.com - 24/Mar 22:29

The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package on PyPI and claiming to...

Sorry! Image not available at this time

Trivy vulnerability scanner breach pushed infostealer via GitHub Actions

bleepingcomputer.com - 21/Mar 17:30

The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed credential-stealing...

Sorry! Image not available at this time

Trivy vulnerability scanner breach pushed infostealer via GitHub Actions

bleepingcomputer.com - 21/Mar 17:30

The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed credential-stealing...

Sorry! Image not available at this time

TeamPCP Hacks Checkmarx GitHub Actions Using Stolen CI Credentials

itsecuritynews.info - 24/Mar 11:11

Two more GitHub Actions workflows have become the latest to be compromised by credential-stealing malware by a threat actor known as TeamPCP, the...

Les derniers communiqués